cc19c1dc46db180d67f1ed5e0ed0304860e4e988eb2cabc4c5a1cef4a28575b4

Sharing

Copy URL Twitter E-mail

General

Target

cc19c1dc46db180d67f1ed5e0ed0304860e4e988eb2cabc4c5a1cef4a28575b4
Size

10.0MB
MD5

dca4c1b18db389e8e123f490e8d9886b
SHA1

a876d20f2e34264e2d058f7bd734c53fc0c9ff37
SHA256

cc19c1dc46db180d67f1ed5e0ed0304860e4e988eb2cabc4c5a1cef4a28575b4
SHA512

44f838f7c318571b1d241d932a1c952ec41faa7e2840324caf4528072436977833d118b9904b3d79c7e5390aa5dec1ccfb22ba7e69f5f12defc9a45b14a1d4f1
SSDEEP

196608:Fmx4GQ35pUXVgskAco+KCcKGb8EvgVio5nAwZX/gs4gz1Zj032y0ZEgpeQk6m14X:U4HoV5kpaGVVi8AaosBT4329YQkB4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cc19c1dc46db180d67f1ed5e0ed0304860e4e988eb2cabc4c5a1cef4a28575b4

Files

cc19c1dc46db180d67f1ed5e0ed0304860e4e988eb2cabc4c5a1cef4a28575b4
.exe windows:6 windows x86 arch:x86

4c74adeac6e964f636f9edbc5065950f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Q:\Start11_2\v2\TilesConfig\Release\TilesConfig.pdb

Imports

gdiplus

GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCreateFromHDC
GdipSetImageAttributesWrapMode
GdipDisposeImageAttributes
GdipGetImagePaletteSize
GdipSetPixelOffsetMode
GdipDrawImageRectI
GdipSetInterpolationMode
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipDrawImageI
GdipDrawImageRectRect
GdipCreateBitmapFromStream
GdipCreateBitmapFromHBITMAP
GdipCreateImageAttributes
GdiplusShutdown
GdipFree
GdipCreateBitmapFromFile
GdipCreateHBITMAPFromBitmap
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipAlloc

uxtheme

DrawThemeTextEx
IsAppThemed
GetThemeInt
IsThemeBackgroundPartiallyTransparent
GetWindowTheme
DrawThemeBackground
GetThemePartSize
DrawThemeParentBackground
CloseThemeData
OpenThemeData
EndBufferedPaint
BeginBufferedPaint
GetCurrentThemeName
GetThemeColor
DrawThemeText
GetThemeSysColor

wininet

InternetCloseHandle
HttpQueryInfoA
InternetCrackUrlA
InternetOpenA
InternetReadFile
HttpSendRequestA
HttpOpenRequestA
InternetConnectA

dwmapi

DwmUpdateThumbnailProperties
DwmRegisterThumbnail
DwmExtendFrameIntoClientArea
DwmSetWindowAttribute
DwmUnregisterThumbnail

kernel32

IsProcessorFeaturePresent
ResetEvent
WaitForSingleObjectEx
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
WriteConsoleW
GetStringTypeW
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindFirstFileExW
GetTimeZoneInformation
ReadConsoleW
SetFilePointerEx
GetConsoleMode
GetConsoleCP
LCMapStringW
GetStdHandle
GetFileType
SetStdHandle
VirtualAlloc
QueryPerformanceFrequency
HeapQueryInformation
GetCommandLineW
GetCommandLineA
CreateDirectoryW
ExitProcess
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
CreateThread
GetTempFileNameW
SystemTimeToTzSpecificLocalTime
GetFileTime
UnhandledExceptionFilter
GetFileAttributesExW
FileTimeToLocalFileTime
SetErrorMode
GetFileAttributesW
GetProfileIntW
SearchPathW
lstrcmpiW
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
FindResourceExW
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GetCurrentDirectoryW
GetThreadLocale
GlobalGetAtomNameW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GlobalFlags
lstrcpyW
ResumeThread
CompareStringA
RtlUnwind
OutputDebugStringW
GetVersionExW
CompareStringW
GlobalFindAtomW
GlobalAddAtomW
SetUnhandledExceptionFilter
GetFileSizeEx
lstrcmpW
GlobalDeleteAtom
GetSystemDirectoryW
EncodePointer
CopyFileW
FormatMessageW
MulDiv
LocalFree
GlobalSize
FreeResource
OutputDebugStringA
InitializeCriticalSectionAndSpinCount
VirtualQuery
VirtualProtect
GetSystemInfo
GetCurrentProcessId
GetTickCount64
WritePrivateProfileStringW
GetPrivateProfileSectionNamesA
GetPrivateProfileSectionA
GetSystemDirectoryA
FindNextFileW
FindFirstFileW
GetProcessHeap
DeleteCriticalSection
HeapDestroy
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
InitializeCriticalSectionEx
HeapFree
CreateFileW
LoadLibraryW
GetModuleHandleExA
GetTempPathW
FreeLibrary
LoadLibraryExW
VerifyVersionInfoW
VerSetConditionMask
GetUserGeoID
DeleteFileW
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
GetVersion
LoadLibraryExA
GetUserPreferredUILanguages
GetCurrentProcess
GetModuleFileNameA
GetWindowsDirectoryW
TerminateProcess
OpenProcess
GetModuleHandleA
CloseHandle
GetProductInfo
GetProcAddress
GetModuleFileNameW
LoadLibraryA
lstrlenW
FileTimeToSystemTime
WideCharToMultiByte
GetTickCount
GetLastError
lstrcatA
lstrlenA
lstrcmpA
SetLastError
GetComputerNameA
WaitForSingleObject
GetCurrentThread
SetThreadPriority
SetEvent
LeaveCriticalSection
EnterCriticalSection
CreateEventW
InitializeCriticalSection
GetPrivateProfileIntW
GetPrivateProfileStringW
GetWindowsDirectoryA
FindClose
FindNextFileA
FindFirstFileA
SetCurrentDirectoryA
GetCurrentThreadId
GetModuleHandleW
MultiByteToWideChar
FindResourceW
LoadResource
LockResource
SizeofResource
Sleep

user32

DrawEdge
GetNextDlgGroupItem
SetRect
InvalidateRgn
CopyAcceleratorTableW
CharNextW
WaitMessage
LoadImageW
UnionRect
EnableScrollBar
IsRectEmpty
SetMenuDefaultItem
GetMenuDefaultItem
NotifyWinEvent
WindowFromPoint
MessageBeep
SetWindowRgn
DeleteMenu
GetSystemMenu
CharUpperW
IsZoomed
TrackMouseEvent
IntersectRect
InflateRect
RealChildWindowFromPoint
EnumDisplayMonitors
GetSysColorBrush
ShowOwnedPopups
SetWindowContextHelpId
PostQuitMessage
MapDialogRect
GetAsyncKeyState
LoadMenuW
MapVirtualKeyW
GetKeyNameTextW
IsDialogMessageW
CheckDlgButton
MoveWindow
SetMenuItemInfoW
GetMenuCheckMarkDimensions
EnableMenuItem
CheckMenuItem
WinHelpW
GetScrollInfo
SetScrollInfo
GetTopWindow
EqualRect
CopyRect
AdjustWindowRectEx
GetWindowTextLengthW
ShowScrollBar
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ValidateRect
SetMenu
GetCapture
SetWindowPlacement
GetWindowPlacement
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
GetMessageTime
GetMessagePos
SetRectEmpty
SendDlgItemMessageA
TabbedTextOutW
GrayStringW
DrawTextExW
RemoveMenu
InsertMenuW
GetMenuItemID
GetSubMenu
GetMenuState
GetLastActivePopup
SetActiveWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
LoadBitmapW
GetClassNameW
DrawStateW
AdjustWindowRect
SetParent
DrawFocusRect
DrawIcon
MonitorFromPoint
RegisterClassW
IsIconic
DisplayConfigGetDeviceInfo
QueryDisplayConfig
GetDisplayConfigBufferSizes
UnregisterClassW
WindowFromDC
SwitchToThisWindow
SetMenuItemBitmaps
GetIconInfo
DestroyIcon
CreateIconIndirect
RegisterWindowMessageA
UnpackDDElParam
OffsetRect
GetMonitorInfoW
MonitorFromWindow
BroadcastSystemMessageW
AllowSetForegroundWindow
GetComboBoxInfo
SetGestureConfig
GetGestureInfo
SetForegroundWindow
BringWindowToTop
ChildWindowFromPoint
ScrollWindowEx
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
EnumChildWindows
LoadImageA
LoadStringW
FindWindowExW
GetWindowTextA
SetWindowTextA
GetWindowDC
SetCursor
LoadCursorW
ScreenToClient
EndPaint
GetDlgCtrlID
GetCursorPos
BeginPaint
FindWindowW
SendMessageTimeoutW
GetWindowThreadProcessId
SystemParametersInfoW
DispatchMessageW
TranslateMessage
GetMessageW
PeekMessageW
CreateWindowExA
DestroyWindow
UpdateLayeredWindow
SetTimer
SetLayeredWindowAttributes
KillTimer
SendMessageA
MessageBoxW
MessageBoxA
wsprintfA
CopyImage
DrawIconEx
GetFocus
InternalGetWindowText
SetFocus
PtInRect
UpdateWindow
GetWindow
GetWindowTextW
DestroyMenu
SetWindowPos
IsWindowEnabled
wsprintfW
GetMenuStringW
UnhookWindowsHookEx
TrackPopupMenu
SetWindowsHookExW
ClientToScreen
InsertMenuItemW
AppendMenuW
CreatePopupMenu
CallNextHookEx
GetForegroundWindow
IsWindowVisible
GetClassNameA
RemovePropA
PostMessageW
ReleaseCapture
SetCapture
GetPropW
IsWindow
RemovePropW
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
LoadAcceleratorsW
CreateAcceleratorTableW
DestroyAcceleratorTable
SetCursorPos
LockWindowUpdate
SetClassLongW
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClipboardFormatW
CharUpperBuffW
ModifyMenuW
GetWindowRgn
DestroyCursor
CreateMenu
SubtractRect
GetUpdateRect
IsClipboardFormatAvailable
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
MapVirtualKeyExW
IsCharLowerW
GetDoubleClickTime
InvertRect
HideCaret
PostThreadMessageW
FrameRect
CopyIcon
GetWindowRgnBox
ReuseDDElParam
GetWindowLongW
DefWindowProcW
GetSystemMetrics
DrawTextA
DrawFrameControl
GetMenuInfo
GetPropA
GetClassLongW
CallWindowProcW
GetWindowRect
GetMenuItemInfoW
GetMenuItemCount
GetMenu
GetDesktopWindow
GetSysColor
DrawTextW
MapWindowPoints
SetPropW
ReleaseDC
GetDC
InvalidateRect
GetParent
LoadIconW
FindWindowA
ShowWindow
EnableWindow
SetWindowTextW
FillRect
GetClientRect
SetWindowLongW
SetPropA
RedrawWindow
GetDlgItem
RegisterWindowMessageW
SendMessageW
GetKeyState
TranslateAcceleratorW
GetScrollRange

gdi32

IntersectClipRect
LineTo
PtVisible
RestoreDC
SaveDC
SelectPalette
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
TextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetViewportExtEx
PatBlt
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
GetTextExtentPoint32W
CombineRgn
GetMapMode
SetRectRgn
DPtoLP
GetBkColor
GetRgnBox
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
Polyline
RealizePalette
SetDIBColorTable
OffsetRgn
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RoundRect
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetWindowOrgEx
GetViewportOrgEx
SetPixelV
GetTextFaceW
GetObjectType
GetWindowExtEx
ExcludeClipRect
Escape
CreatePatternBrush
CreateDCW
CopyMetaFileW
CreateRoundRectRgn
CreateFontW
GetClipBox
GetTextMetricsW
RectVisible
GetDeviceCaps
StretchBlt
GetClipRgn
EnumFontFamiliesExW
CreateFontIndirectW
GetDCBrushColor
GetDCPenColor
CreateHatchBrush
SetDCBrushColor
SetDCPenColor
SetPixel
GetCurrentObject
SetStretchBltMode
SelectClipRgn
ExtSelectClipRgn
CreateRectRgn
ExtTextOutW
GetTextColor
SetBrushOrgEx
LPtoDP
CreateFontA
Rectangle
CreatePen
GetObjectW
SetDIBitsToDevice
GetDIBits
GetPixel
SetBkColor
CreateBitmap
BitBlt
CreateCompatibleBitmap
DeleteDC
SelectObject
CreateCompatibleDC
CreateDIBSection
StretchDIBits
DeleteObject
CreateSolidBrush
GetStockObject
SetTextColor
CreateRectRgnIndirect
SetBkMode

msimg32

TransparentBlt
AlphaBlend

comdlg32

ChooseColorW
GetOpenFileNameA
GetOpenFileNameW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

CryptReleaseContext
RegEnumKeyExW
RegQueryValueW
RegCreateKeyExW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegCreateKeyExA
RegDeleteKeyExA
FreeSid
CheckTokenMembership
AllocateAndInitializeSid
GetTokenInformation
OpenProcessToken
RegEnumKeyW
RegDeleteKeyW
RegDeleteTreeW
RegDeleteValueW
RegSetValueExW
RegDeleteKeyA
RegOpenKeyExW
CryptEncrypt
CryptDecrypt
CryptSetKeyParam
CryptAcquireContextW
CryptDestroyKey
RegDeleteValueA
RegCreateKeyA
RegQueryValueExA
CryptDestroyHash
CryptVerifySignatureW
CryptHashData
CryptCreateHash
CryptImportKey
CryptAcquireContextA
GetSidSubAuthority
GetSidSubAuthorityCount
GetSidIdentifierAuthority
IsValidSid
LookupAccountNameA
RegEnumValueW
RegCreateKeyW
RegQueryValueExW
RegOpenKeyW
RegOpenKeyExA
RegSetValueExA
RegCloseKey
RegOpenKeyA

shell32

SHGetPathFromIDListW
SHGetFolderPathW
SHGetFolderPathA
ShellExecuteW
ShellExecuteA
SHGetKnownFolderPath
SHCreateItemFromParsingName
SHGetNameFromIDList
ShellExecuteExW
SHGetMalloc
SHGetFileInfoW
DragFinish
DragQueryFileW
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHBrowseForFolderW
SHAppBarMessage
SHGetPropertyStoreFromParsingName

shlwapi

PathFileExistsW
PathFileExistsA
UrlEscapeA
StrStrIA
SHStrDupW
PathIsNetworkPathW
ord487
PathFindExtensionW
PathFindFileNameW
PathRemoveExtensionW
PathRemoveFileSpecW
PathIsUNCW
PathStripToRootW
StrFormatKBSizeW

ole32

CoSetProxyBlanket
CoInitializeSecurity
CoInitializeEx
CoTaskMemAlloc
CoTaskMemFree
CoInitialize
PropVariantClear
CreateStreamOnHGlobal
OleDuplicateData
ReleaseStgMedium
CoCreateGuid
CLSIDFromString
CLSIDFromProgID
CoDisconnectObject
CoGetClassObject
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CoCreateInstance
CoRegisterMessageFilter
CoRevokeClassObject
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
CoUninitialize

oleaut32

SysFreeString
VariantClear
OleCreateFontIndirect
VarBstrFromDate
VariantCopy
SysAllocString
SafeArrayDestroy
SystemTimeToVariantTime
LoadTypeLi
SysStringLen
SysAllocStringLen
VariantChangeType
VariantInit
VariantTimeToSystemTime

oledlg

OleUIBusyW

crypt32

CertFreeCertificateContext
CryptBinaryToStringW
CryptStringToBinaryA
CertGetNameStringA
CryptVerifyMessageSignature
CertGetNameStringW
CryptStringToBinaryW

oleacc

LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

Sections

.text
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 441KB - Virtual size: 444KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7.3MB - Virtual size: 7.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 194KB - Virtual size: 194KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4c74adeac6e964f636f9edbc5065950f

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

gdiplus

uxtheme

wininet

dwmapi

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

ole32

oleaut32

oledlg

crypt32

oleacc

imm32

Sections

.text Size: 2.1MB - Virtual size: 2.1MB

.rdata Size: 441KB - Virtual size: 444KB

.data Size: 25KB - Virtual size: 124KB

.rsrc Size: 7.3MB - Virtual size: 7.3MB

.reloc Size: 194KB - Virtual size: 194KB

.text
Size: 2.1MB - Virtual size: 2.1MB

.rdata
Size: 441KB - Virtual size: 444KB

.data
Size: 25KB - Virtual size: 124KB

.rsrc
Size: 7.3MB - Virtual size: 7.3MB

.reloc
Size: 194KB - Virtual size: 194KB